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This paper gives a detailed account of the relationship between (a variant of) the call-by-value lambda 
calculus and linear logic proof nets. The presentation is carefully tuned in order to realize a strong 
bisimulation between the two systems: every single rewriting step on the calculus maps to a single 
step on the nets, and viceversa. In this way, we obtain an algebraic reformulation of proof nets. 
Moreover, we provide a simple correctness criterion for our proof nets, which employ boxes in an 
unusual way. 

1 Introduction 

A key feature of linear logic (LL) is that it is a refinement of intuitionistic logic, i.e. of A-calculus. In 
particular, one j8 -reduction step in the A -calculus corresponds to the sequence of two cut-elimination 
steps in linear logic, steps which are of a very different nature: the first is multiplicative and the second 
is exponential. The Curry-Howard interpretation of this fact is that A -calculus can be refined adding 
a constructor t[x/u\ for explicit substitutions, and decomposing a jS-step {Xx.t)u -^p t{x/u} into the 
sequence {Xx.t)u -^^ t[x/u\ -^^ t{x/u}. 

Another insight due to linear logic is that proofs can be represented graphically — by the so-called 
proof nets — and the reformulation of cut-elimination on proof netstakes a quite different flavour with 
respect to cut-elimination in sequent calculus. The parallel nature of the graphical objects makes the 
commutative cut-elimination steps, which are the amioying burden of every proof of cut-admissibility, 
(mostly) disappear. 

These two features of LL have influenced the theory of explicit substitutions in various ways 11161 171. 
culminating in the design of the structural X-calculus L4J, a calculus isomorphic (more precisely strongly 
bisimilar) to its representation in LL proof nets E [T]. Such a calculus can be seen as an algebraic 
reformulation of proof nets for A -calculus 1111241, and turned out to be simpler and more useful than 
previous calculi with explicit substitutions. 

Girard's seminal paper on linear logic [|14 l presents two translations of A -calculus into LL. The first 
one follows the typed scheme (A ^ BY =!A° — o 5°, and it is the one to which the previous paragraphs 
refer to. It represents the ordinary — or call-by-name (CBN) — A -calculus. The second one, identified by 
(A By =!(A^ — o B^), was qualified as boring by Girard and received little attention in the literature 
Il2l]|23l[l0l[ll][l2l|2il. Usually, it is said to represent Plotkin's call-by-value (CBV) A/j^-calculus [22J. 
These two representations concern typed terms only, but it is well-known that they can be extended to 
represent the whole untyped calculi by considering linear recursive types {o = \o ^ o for call-by-name 
and and o = !(o — o o) for call-by-value). 

Surprisingly, the extension of the CBV translation to the untyped calculus Ajg^-calculus introduces a 
violent unexpected behavior: some normal terms in A^gy map to (recursively typed) proof nets without 
normal form (see [2] for concrete examples and extensive discussions). This fact is the evidence that 
there is something inherently wrong in the CBV translation. 
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In this paper we show how to refine the three actors of the play (the CBV A -calculus, the translation 
and the proof nets presentation) in order to get a perfect match between terms and proof nets. Techni- 
cally, we show that the new translation is a strong bisimulatioifl and since strong bisimulations preserve 
reductions length (in both directions), the normalization mismatch vanishes. 

Interestingly, to obtain a strong bisimulation we have to make some radical changes to both the 
calculus and the presentation of proof nets. The calculus, that we call the value substitution kernel Xyker 
121, is a subcalculus of the value substitution calculus Xy^sub studied in |5], which is a CBV A-calculus 
with explicit substitutions. Such a kernel is as expressive as the full calculus, and can be thought as a 
sort of CPS representation of Xysub- 

Here, however, we mostly take the calculus for granted (see lEl for more details) and rather focus on 
proof nets. Our two contributions are: 

1. Graphical syntax and algebraic formalism: it is far from easy to realize a strong bisimulation 
between terms and nets, as it is necessary to take care of many delicate details about weakenings, 
contractions, representation of variables, administrative reduction steps, and so on. The search 
for a strong bisimulation may seem a useless obsession, but it is not. Operational properties as 
confluence and termination then transfer immediately from graphs to terms, and viceversa. More 
generally, such a strong relationship turns the calculus into an algebraic language for proof nets, 
providing an handy tool to reason by structural induction over proof nets. 

2. Correctness criterion: we provide a characterization of the proof nets representing Xy.ker based on 
graph-theoretical principles and which does not refer to XyUer, that is, we present a correctness cri- 
terion. Surprisingly, the known criteria for the representation of the call-by-name A-calculus (with 
explicit substitutions) fail to characterize the fragment encoding the call-by-value A-calculus. Here 
we present a simple and non-standard solution to this problem. We hack the usual presentation of 
proof nets so that Laurent's criterion for polarized nets IITtI [T9l [TSl — the simplest known correct- 
ness criterion — captures the fragment we are interested in. The hacking of the syntax consists in 
using boxes for ^-links rather than for !-links. An interesting point is that the fragment we deal 
with is not polarized in Laurent's sense, despite it is polarized in the Lamarche/intuitionistic sense. 

The use of boxes for ^-links may look terribly ad-hoc. Section |6] tries to argue that it is not. More- 
over, Section |2]presents an account of the technical points concerning the representations of terms with 
proof nets, and how they have been treated in the literature. 

2 Terms 

In this section we introduce the calculus which will be related to proof nets, called the value substitution 
kernel Xy,ker 0. Its syntax is: 

t,s,u,r ::= x \ Xx.t \ vs \ t[x/u] v ::= x \ Xx.t 

where t[x/u] is an explicit substitution and values are noted v. Note that the left subterm of an application 
can only be a value. The rules of Xy,ker are: 

[Xx.t)u l-^ni t[x/u] t[x/v\J\ l-^e t{x/v}l. 

'a Strong bisimulation between two rewriting systems S and is a relation = between S and R s.t. whenever s = r then for 
every step from s -^s ^' there is a step r r' s.t. s' = r', and viceversa (for s, i' e 5 and r, / e R). 
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where L is a possibly empty list of explicit substitutions [jci/mi] . . . [xt/uk] (and the fact that in the Ihs of 
I— )-e L appears inside [ ] while in the rhs it appears outside { } is not a typo). The calculus is confluent IH. 

The peculiarity of the value substitution kernel is that iterated applications as {tu)s are not part of the 
language. The idea is that they are rather represented as {xs)[x/tu\ with x fresh. The calculus containing 
iterated applications is called the value substitution calculus K,sub^ and it has been studied in |l5]l2l- In El 
it is shown that X^,suh can be represented inside X^ker (mapping iterated applications {tu)s to {xs)[x/tu], 
as before) and that a term t and its representation t^ are equivalent from the point of view of termination 
(formally t is strongly (resp. weakly) normalizing iff t^ is, and the same is true with respect to weak — 
i.e. not under lambda — reduction). If one is interested in observing termination (as it is usually the case) 
than K'sub and are observationally equivalent (via ■^). As pointed out to us by Frank Pfenning, the 
map is reminiscent of the notion of A-reduction in the theory of CPS -translations |[T3l |25 J . The idea 
is then that X^.^e,- (and thus proof nets) is essentially the language of A-normal forms associated to X^sub- 
However, the study of the precise relationship with A-normal forms is left to future work. 

The calculus has been related to Herbelin and Zimmermann's Xcbv ifTSl in 151. In turn, Xcbv 
is related to Plotkin's A^g,, in [15,1 . where it is shown that the equational theory of A^g^ is contained in the 
theory of Xcbv- 

The rest of the paper shows that Xy,ker can be seen as an algebraic language for the proof nets used to 
interpret the call-by- value A -calculus. 

3 Proof nets: definition 

Introduction. Our presentation of proof nets is non-standard in at least four points (we suggest to have a 
quick look to Figure O: 

1. Hypergraphs: we use hypergraphs (for which formulas are nodes and links — i.e. logical rules — 
are hyperedges) rather than the usual graphs with pending edges (for which formulas are edges 
and links are nodes). We prefer hypergraphs because in this way contraction can be represented in 
a better way (providing commutativity, associativity, and permutation with box borders /or /ree) 
and at the same time we can represent cut and axiom hnks implicitly (similarly to what happens in 
interaction nets). 

2. ^-boxes: We put boxes on ^-Unks and not on !-links. This choice is discussed in Section [6l and 
it allows to use a very simple correctness criterion — i.e. Laurent's criterion for polarized nets — 
without losing any property. 

3. Polarity: we apply a polarized criterion to a setting which is not polarized in the usual sense. 

4. Syntax tree: since we use proof nets to represent terms, we will dispose them on the plane accord- 
ing to the syntax tree of the corresponding terms, and not according to the corresponding sequent 
calculus proof (also the orientation of the links does not reflect the usual premise-conclusion ori- 
entation of proof nets). 

Nets. Nets are directed and labelled hyper-graphs G = {V{G),L{G)), i.e., graphs where V{G) is a set 
of labelled nodes and L{G) is a set of labelled and directed hyperedges, called links, which are edges 
with 0,1 or more sources and 0,1 or more targets^. Nodes are labelled with a type in {e,m}, where e 
stays for exponential and m for multiplicative, depicted in blue and brown, respectively. If a node u has 

^ An hyper-graph G can be understood as a bipartite graph B(j, where Vi (6g) is V(G) and V2{B(j) is L{G), and the edges 
are determined by the relations being a source and being a target of an hyperedge. 
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Figure 1: links. 



type e (resp. m) we say that it is a e-node (resp. m-node). We shall consider hyper-graphs whose links 
are labelled from {!,d,w,^,(8)}. The label of a link I forces the number and the type of the source and 
target nodes of I, as shown in Figure [T] (the types will be discussed later, and the figure also contains the 
□-link, which is not used to define nets: it will be used later to define the correction graph). Note that 
every hnk (except □) has exactly one connection with a little circle: it denotes the principal node, i.e. the 
node on which the link can interact. Remark the principal node for tensor and !, which is not misplaced. 
Moreover, every ^-link has an associated box, i.e., a sub-hyper-graph of G (have a look to Figure [3]). 
The sources (resp. targets) of a net are the nodes without (resp. outgoing) incoming links; a node which 
is not a source nor a target is internal. Formally: 

Definition 3.1 (net). A net G is a quadruple {\G\,Bg ,fv{G) ^rc), where |G| = (y{G),L{G)) is an hyper- 
graph whose nodes are labelled with either e or w and whose hyperedges are {!,d,w,^,(8)}-links and 
s.t: 

• Root: tq € V{G) is a source e-node of G, called the root of G. 

• Conclusions: f v(G) is the set of targets of G, also called free variables of G, which are targets of 
{d,w}-links (and not of (8)-links). 

• Multiplicative: m-nodes have exactly one incoming and one outgoing link. 

• Exponential: an e-node has at most one outgoing link, and if it is the target of more than one link 
then they all are d-links. Moreover, an e-node cannot be isolated. 

• Boxes: For every ^-link / there is a net box{l), called the box of I (Bq is the set of boxes of G and 
box{l) G Eg), with a distinguished free variable x, called the variable of /, and s.t.: 

- Border: the root r^o;c(/) and the free variable x are the e-nodes of I, and any free variable 7^ x 
of box{l) is not the target of a weakening. 

- Nesting: for any two ^-boxes box{li) and box{l2) if 7^ / := box{l]) r\box{l2), box{l\) % 
boxilj), and boxil-i) ^ box(l\) then all the nodes in / are free variables of both box(l\) and 
box{l2)- 

- Internal closure: any link I of G having as target an internal e-node of box{l) is in box{l). 

- Subnet: the nodes and the links of box{l) belong to G and the ^-links in box{l) inherit the 
boxes from G. 

Some (technical) comments on the definition. In the border condition the fact that the free variables 
7^ ;c are not (the target) of a weakening means that weakenings are assumed to be pushed out of boxes as 
much as possible (of course the rewriting rules will have to preserve this invariant). The internal closure 
condition is a by-product of collapsing contractions on nodes, which is also the reason of the unusual 
formulation of the nesting condition: two boxes that are morally disjoint can in our syntax share free 
variables, because of an implicit contraction merging two of their conclusions. 
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Figure 2: various images. 



Terminology about nets. The level of a node/link/box is the maximum number of nested boxes in 
which it is containej^ (a ^-link is not contained in its own box). Two links are contracted if they 
share an e-target. Note that the exponential condition states that only derelictions (i.e. d-links) can be 
contracted. In particular, no link can be contracted with a weakening. A free weakening in a net G is 
a weakening whose node is a free variable of G. Sometimes, the figures show a link in a box having as 
target a contracted e-node x which is outside the box: in those cases x is part of the box, it is outside of 
the box only in order to simplify the representation. 

Typing. Nets are typed using a recursive type o = \{o —o o), that we rename e = !(e — o e) = \(e^ ^ e) 
because e is a mnemonic for exponential. Let m = e ^ e = e^ e, where m stays for multiplicative. 
Note that e = \m and m=\m — o!m. Links are typed using m and e, but the types are omitted by all figures 
except Figure [T]because they are represented using colors and with different shapes (m-nodes are brown 
and dot-like, e-nodes are white-filled cyan circles). Let us explain the types in Figure [T] They have to be 
read bottom-up, and thus negated (to match the usual typing for links) if the conclusion of the logical rule 
is the bottom node of the link, as it is the case for the {w,d,(8>}-links, while ! and ^ have their logical 
conclusion on the top node, and so their type does not need to be negated. 

Induced \-boxes. Note that a !-link is always applied to something (m-nodes cannot be conclusions), 
and there is not so much freedom for this something: either it is a dereliction link or a ^ with its box. Note 
also that in both cases we get (what would usually be) a valid content for a !-box. For the dereliction 
case it is evident, and for the ^ case it is guaranteed by the definition of net: the content of a ^-box 
ends on e-nodes. Hence, any !-link has an associated box, induced by ^-boxes, which needs not to be 
represented explicitly. 

The translation. Nets representing terms have the general form in Figure 0a, also schematized as in 
Figure [2lb. The translation ■_ from terms to nets is in Figure |3](the original boring translation is sketched 
in Fig. |6l pagel22l). A net which is the translation of a term is a proof net. Note that in some cases there 
are various connections entering an e-node, that is the way we represent contraction. In some cases the 
e-nodes have an incoming connection with a perpendicular little bar: it represents an arbitrary number 
(> 0) of incoming connections. The net corresponding to a variable is given by a ! on a dereliction 
and not by an (exponential) axiom, as it is sometimes the case. The reason is that an axiom (in our 
case a node, because axioms are collapsed on nodes) would not reflect on nets some term reductions, as 
x[x/v] — )-e V, for which both the redex and the reduct would be mapped on the same net. 

The translation i_ is refined to a translation , where X is a set of variables, in order to properly handle 
weakenings during cut-elimination. The reason is that an erasing step on terms simply erases a subterm, 
while on nets it also introduces some weakenings: without the refinement the translation would not be 
stable by reduction. The clause defining lxu{)'} when y ^ f v(f) is the first on the second hne of Figure |3] 
the definition is then completed by the following two clauses: t_^:=t_ and txu{.v} '■— Lx^^J ^ ^^(0- 



^Here the words maximum and nested are due to the fact that the conclusions of ^-boxes may belong to two not nested 
boxes, because of the way we represent contraction. 
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Figure 3: the translation from terms to nets. 



a-equivalence. To circumvent an explicit and formal treatment of a-equivalence we assume that 
the set of e-nodes and the set of variable names for terms coincide. This convention removes the need 
to label the targets of with the name of the corresponding free variables in f or X. Actually, before 
translating a term t it is necessary to pick a well-named a-equivalent term t' , i.e. a term where any two 
different variables (bound or free) have different names. 

Remark 3.2. The translation of terms to nets is not injective. By simply applying the translation it is 
easily seen that the following pairs of terms have the same net: 



t[x/s][y/u] 
V u[x/s\ 
t[x/s\y/u]] 



vocs 
■'voi 



V02 



t[y/u][x/s] 
(v m)[x/5] 
t[x/s\\y/u] 



if X ^ fv(M) & y ^ fv{s) 
if X ^ fv(v) 



(1) 



Let =vo be the reflexive, transitive, and contextual closure of ^vocs U ~voi U ~vo2- proof of Lemma 
15.11 we will use the fact that if t =,0 s then t and s are mapped on the same net. We also claim — without 
proving it — that =,,„ is exactly the quotient induced on terms by the translation to nets. 

Paths. A path T of length G N from u to v, noted T : u -^^ v, is an alternated sequence u = 
Ml , Zi , . . . , Ik^Uk+i = V of nodes and links s.t. the link has source and target for / G { 1 , . . . , ^}. A 
cycle is a path u — j-*^ u with k>0. 

Correctness. The correctness criterion is based on the notion of correction graph, which is — as usual 
for nets with boxes — obtained by collapsing every box at level into a generalized axiom link. 

Definition 3.3 (correction graph). Let G be a net. The correction graph G° of G is the hyper-graph 
obtained from G by collapsing any ^-box at level into a n-link applying the rule in Fig. |2]c. 

Definition 3.4 (correctness). A net G is correct if: 

• Source: has exactly one e-source (the root of G). 
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• Acyclicity: G is acyclic. 

• Recursive correctness: the interior of every box is correct. 

As usual an easy induction on the translation shows that the translation of a term is correct, i.e. that: 
Lemma 3.5. Every proof net is correct. 

4 Proof nets: sequentialization 

In this section we show how to extract a term t from every correct net G in such a way that t translates 
back to G, i.e. we show that every correct net is a proof net. The proof of this fact is based on the notion 
of kingdom, along the lines of the proof for polarized nets, see Iil8 1 (pp. 57-63). 

Definition 4.1 (Kingdom). Let G be a correct net and x ^ f v(G) one of its e-nodes. The kingdom 
king{x) of X is the set of links defined by induction on the link I of source x: 

• / is a !-link: king{x) is given by / plus the d-link or the ^-box on the m-target of /. 

• Z is a (8)-link: king{x) is given by / plus the d-link or the ^-box on the m-target of I plus king{y), 
where y is the e-target of I. 

The main property of king{x) is that it is the smallest subnet of root x, as we shall soon prove0. To 
state this fact precisely we need the notion of subnet. 

Definition 4.2 (subnet). Let G be a correct net. A subnet // of G is a subset of its links s.t. it is a correct 
net and satisfying: 

• Internal closure: if x is an internal e-node of H then any link of G of target x belongs to H. 

• Box closure: 

- Root: if a ^-link I belongs to H then its box does it too. 

- Free variables: if a free variable of a box B of G is internal to H then B QH. 

The following lemma is essentially obvious, and usually omitted, but in fact it is used in the proof of 
Lemma 1431 

Lemma 4.3. Let G be a correct net, H a subnet of G, x an internal e-node of H. Then there exists a 
subnet K ofH having x as root and s.t. it is a subnet ofG. 

Proof. It is enough to show that there is a subnet of H of root x, since it is obvious that any subnet of K 
is a subnet of G. By induction on the length of the maximum path from x to a free variable of K. □ 

To properly describe kingdoms we need the following definition. 

Definition 4.4 ((free/ground) substitution). Let G be a correct net. A substitution is an e-node which is 
the target of a {w,d}-link (or, equivalently, which is not the target of a (g)-link) and the source of some 
link. A substitution x is ground if it is a node of G" {i.e. it is not internal to any 2?-bo?i), and it is free if 
it is ground and there is no ground substitution of G to which x has a path (in G"). 

Lemma 4.5 (kingdom). Let G be a correct net and x ^ f v(G) one of its e-nodes. king{x) is the kingdom 
ofx, i.e., the smallest subnet ofG rooted at x. Moreover, it has no free substitutions, no free weakenings, 
and whenever y € fv(king(x)) is internal to a subnet H ofG then king{x) C H. 

^We call kingdom ofx the net in def. 14.11 but at this point nothing guarantees that it is the smallest subnet of root x. 
^Note that our collapsed representation of contractions and cuts does not allow to simply say that x is a node at level 0: 
indeed the conclusion of a ^-box can have level > and yet belong to G". 
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Proof. Let H he a correct subnet of G rooted at x. We show by induction on the length of the maximum 
path from x to a free variable of G that king{x) C H and that king{x) is correct. Let / be the link of source 
X. Cases: 

• Base case: / is a !-link. By the conclusion condition H has to contain the d-link / or the ^-hnk 
on the m-target of /. In the case of a ^-link the box closure condition implies that the whole box 
B is in H, hence king{x) C H. In the case of a d-link correctness is obvious, in the case of a ^- 
box it follows by the correctness of the interior of the box, guaranteed by the recursive correctness 
condition. Moreover, no free substitutions and no free weakenings belong to king{x) (boxes cannot 
close on weakenings). Pick y € fv{king{x)), which in the d-link case is the target of / and in the 
other case is a free variable of the ^-box B. If y is internal to H then the conditions for a subnet 
guarantee that / or B are in //. Then clearly king{x) C H. 

• Inductive case: / is a (g)-link. As in the previous case H has to contain the d-link or the ^-box 
on the m-target of /. Moreover, by lemma 1431 // contains a subnet K rooted in the e-target y of I. 
By inductive hypothesis king{y) is the kingdom of y, therefore we get king(y) ^ K C H. Hence 
king{x) C H. By i.h. we also get that king{y) is correct, hence y is its only e-source and x is the only 
e-source of king{x). Acyclicity follows by correctness of G. Recursive correctness follows from 
the box closure condition and correctness of G. Moreover, by i.h. king{y) — and so king{x) — has 
no free substitutions and no free weakenings. The part about free variables uses the i.h. for the 
free variables of kingiy) and the conditions for a subnet as in the previous case for the other free 
variables. □ 

Lemma 4.6 (substitution splitting). Let G be a correct net with a free substitution x. Then 

1. The free variables ofking{x) are free variables ofG. 

2. G\ king{x) is a subnet ofG. 

Proof. 1) Suppose not. Then there is a free variable y of king{x) which is not a free variable of G. There 
are two possible cases: 

• y is a substitution. Then x has a path to a substitution in G", against the definition of free substitu- 
tion, absurd. 

• y is the distinguished free variable of a ^-box B. Thus, y is internal to some ^-box B and so it is 
not a node of G°. By Lemma [43] we get that king{x) C B and so x is not a node of G^, against the 
definition of free substitution, absurd. 

2) By point 1 the removal of king{x) cannot create new e-sources. Being a substitution, x is the target of 
some link. Therefore the removal of king{x) cannot remove the root of G. It is also clear that the removal 
cannot create cycles, and the box closure condition for subnets guarantees that the recursive correctness 
of G implies the one of G \ king{x). □ 

Lemma 4.7. Let G be a correct net with a ground substitution. Then G has a free substitution. 

Proof. Consider the following order on the elements of the set Sg of ground substitutions of G: z < j if 
there is a path from z to j in G". Acyclicity of G° implies that Sg contains maximal elements with respect 
to <, if it is non-empty. Note that a maximal element of Sg is a free substitution in G. Now, if G has a 
ground substitution x then 5^ is non-empty. Thus, G has a free substitution. □ 

The next lemma is used in the proof of the sequentialization theorem. 



B. Accattoli 



19 



Lemma 4.8 (kingdom characterization). Let G be a correct net. Then G = king{rQ) iff G has no free 
substitutions nor free weakenings. 

Proof. =>) By Lemma [431 <^) By lemma [43] we get that king{rQ) C G. If the two do not coincide then 
by the internal closure condition for subnets, the multiplicative condition on nets, and the fact that they 
share the same root, we get that G contains a ground substitution x on a free variable of king{rG). By 
lemma 1477] G contains a free substitution, absurd. □ 

Theorem 4.9 (sequentialization). Let G be a correct net and X be the set of e-nodes of its free weaken- 
ings. Then there is a term t s.t. Ix = G (and f v(G) = fv(f) UX). 

Proof. By induction on the number of links. By the root and conclusion conditions the minimum number 
of links is 2 and the two links are necessarily a !-link on top of a d-link. Let x be the e-node of the d-link. 
Then x = G. We now present each inductive case. After the first one we assume that the net has no free 
weakening. 

• There is a free weakening I of e-node y. Then G' = G \ {/} is still a correct net and by i.h. there 
exist t s.t. lx\{y} ~ G - Then t_}^ = G. 

• There is a free substitution x. Then by Lemma |43] and Lemma l46l kins ix) and G\king{x) are 
correct subnets of G. By the i.h. there exist s and u s.t. s = king{x) and Wj^j = G\king{x) (note 
that if X e f v(m) then = Ma = M)- Then u[x/s] = G. 

• No free substitution: by lemma ITSl G = king{rQ). In case the root link I of G is: 

- a [-link over a d-link: base case, already treated. 

- a \-link over a ^-link: let H be the box of the ^-link and x its distinguished free variable. 
By definition of a net the set of free weakenings of H either is empty or it contains only x. If 
X is (resp. is not) the node of a free weakening then by i.h. there exists t s.t. = H (resp. 
t_ = H). Then XxA. = G. 

- A <^-link I: let x be its e-target and a its m-target. Note that G = king{rG) implies that G is 
composed by /, king{x) and either the d-link or the ^-link (plus its box) on a. By i.h. there 
exists s s.t. £ = king{x). Now, if a is the source of a d-link of e-node y we conclude, since 
ys = G. Otherwise, s is the source of a ^ of box H and the i.h. gives a term u and a set X 
s.t. Ux = H. Let us prove that H and king{x) can only share free variables, as the translation 
prescribes: no link at level of king{x) can be in H, and no box at level of king{x) can 
intersect H other than on free variables, by the nesting condition. By reasoning about the 
distinguished free variable of H as in the previous case we then get {Xy.u)s = G. □ 



5 Proof nets: dynamics 

The rewriting rules are in Figure 5] Let us explain them. First of all, note that the notion of cut in 
our syntax is implicit, because cut-links are not represented explicitly. A cut is given by a node whose 
incoming and outgoing connections are principal {i.e. with a little square on the line). 

The rule — ^n, is nothing but the usual elimination of a multiplicative cut, except that the step also 
opens the box associated with the ^-link. 

The two rules reduce the exponential redexes. Let us explain how to read them. For the graph 
noted H in Figure |4] there are two possibilities: either it is simply a dereliction link (a d-link) or it is a ^ 
with its box, so there is no ambiguity on what to duplicate/erase. Every pair of short gray lines denotes 



20 



Proof nets and the call-by-value X-calculus 




Figure 4: proof nets cut-elimination rules 



the sequence (of length m,, with / e {1, . . . ,k}) of boxes closing on the corresponding links. The rule has 
two cases, one where ! is cut with ^ S {1,2, . . .} derelictions and one where it is cut with a weakening. In 
the first case the sub-graph H is copied k times (if ^ = 1 no copy is done) into ..H'^ and each copy 
enters in the m, boxes enclosing the corresponding (and removed) dereliction. Moreover, the k copies of 
each target of H are contracted together, i.e. the nodes are merged. In the case of a cut with a weakening, 
H is erased and replaced by a set of weakenings, one for every target of H. Note that the weakenings 
are also pushed out of all boxes closing on the targets of This is done to preserve the invariant that 
weakening are always pushed out of boxes as much as possible. Such invariant is also used in the rule: 
the weakening is at the same level of H. Last, if the weakenings created by the rule are contracted with 
any other link then they are removed on the fly (because by definition weakenings cannot be contracted). 

Now, we establish the relationship between terms and nets at the level of reduction. Essentially, there 
is only one fact which is not immediate, namely that — >e actually implements the — >e rule on terms, as it 
is proved by the following lemma. 

Lemma 5.1 (substitution). Let t = s[x/vlJ\ then t_x — s-e ^{.x/v}Ly /or any set of names X I) f v(?). 

Proof. First of all observe that t and ^[jc/vjL both reduce to s{x/v}L and by remark |3^ both translate to 
the same net. Hence it is enough to prove that s[x/v]L^ -^e s{^/v}L^. We prove it by induction on the 
number k of substitutions in L. If ^ = then the proof is by induction on the number n of free occurrences 
of X in s. Cases: 

• n = 0)\n s[x/v\ the bang associated to v is cut with a weakening. The elimination of the cut gets 

A 

a net G' without the !-link and the ^-box associated to v, leaving a free weakening for every free 
variable of the box, i.e. of every free variable of v: then G' is exactly ^{^h}^^^^ ^ ^ = £xufv(v)- 

• « > 1) Write s = C[x] for some occurrence of x. Now, consider u = C\y\\y/v\ [x/v] and note that: 

^Note that, for the sake of a simple representation, the figure of the weakening cut-elimination rule is slightly wrong: it is 
not true that the links having as target a given conclusion x; of H are all inside m,- boxes, because each one can be 

inside a different number of boxes. 
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u C[v][x/v] C[v]{x/v} = s{x/v} 

The difference between G' = Ux ^^^^ ^ — ^[^h]x ^^^^ occurrences of x in G has been 

separated from the others and cut with a copy of v. Consider the step G — )• // which reduces the cut 
on X in G and the sequence G' H'y — )• H'y^ which first reduces the cut on y in G' and then reduces 
in H' the (unique) residual of the cut on x in G'. By the definition of reduction in nets H = Hy^. 
Now by i.h. applied to u and y we get that C[v] [x/v]^=Hy and by the i.h. applied to C[v] [x/v] and 
X we get that C[v]{x/v}^ = Hy^. From H = Hy^ and C[v]{x/v} = s{x/v} we get s{x/v}^ = H and 
conclude. 

n = 1) By induction on s. Some cases: 

- If t = Xy.u then by i.h. m[x/v]^ , "Wvly , ,x,.x and so we get Xy.{u[x/v\) ^^^^^ -^e 
Xy.{u{x/v}) Now, observe that Xy.{u{x/v}) = {Xy.u){x/v} = t{x/v} and that the two 
nets Xy.{u[x/v\) ^^^^ ^ and {Xy.u)[x/v\^^^^ ^ have the same reduct after firing the exponential 
cut on X, and so we get {Xy.u)\x/v\^ ^ {ly.u){x/v}) 

- If 5 = h'[3'/m] then either x G m or x G w. In the first case by remark |3^ we get that 5'[x/v]^ = 
H' [y/M][x/v] = w\y/u[x/v\] Now by i.h. u[x/v\ -^e u{x/v}. Then we have ^[x/vj^ — 

y/u{x/v} ^ = w\y/u\{x/v}^ = s{x/v}^. The second case is analogous. 



- \f s = {Xy.w)u. The case x G m uses remark ll!2] and the i.h. as in the s = w\y/u] case. The 
case X G w is slightly different. As before {{Xy.w)u)[x/v\ and {{Xy.w[x/v])u) have the same 
reduct. By i.h. hypothesis ^[x/v] -^e w{x/v} and thus (^^.^[x/v])^ -^e {^y-w{x/v})u . 
We conclude since {{Xy.w)u)[x/v\ -^g ((Ay.w{x/v})M) = {{Xy.w)u){xlv^ 

' —A * 



lfk>0 and L = L'\y/r] then we get by i.h. that 5[x/v]L' -^e By definition of the translation 

X A 

and of graph reduction it follows that 5'[x/v]L'[j/r]^ — )-g s{x/v}L'\y/r]^. □ 

Theorem 5.2 (strong bisimulation). Let t be a term and X a set of variables containing fv{t). The 
translation is a strong bisimulation between t and ix> i-^- ^ t' if and only ift_x —>a t/_X' fa^ ^ ^ 

Proof. By induction on the translation. If ? = x there is nothing to prove, and if f = Xx.s or t = xs it 
immediately follows by the i.h., since all the redexes of t are contained in s. If t = s[x/u\ and the redex 
is in s or M then just apply the i.h.. If m = vL and the redex is ^[x/vL] — )-e s{x/v}L then apply Lemma lSTT] 
If f = {Xx.s)u and the redex is in 5 or m then just apply the i.h.. lft = {Xx.s)u -^^ s[x/u] = t' then have a 
look at Figure |5] a: clearly t — >m t' iff t_x — £jc- ^ 

Strong bisimulations preserve reduction lengths, so they preserve divergent/normalizing reductions, 
and termination properties in general. 

Technical digression about confluence. For confluence the point is slightly more delicate, since in 
general it is preserved only modulo the quotient induced by the strong bisimulation. But mild additional 
hypothesis allow to transfer confluence. Given two rewriting systems (^i,— and (52, and a strong 
bisimulation = (defined on all terms of and ^2), to transfer confluence from to ^2 it is enough to 
ask that if si = S2 and si — > s[ then there is a unique s'2 s.t. S2 S2 and S2 = S2, see [1] (pp. 83-86) for 
more details. It is easily seen that in our case the translation enjoys this property in both directions. 

These observations (and confluence of Xi,ker) prove: 

Corollary 5.3. Let t G A,,^^ andX a set of variables. Then t is weakly normalizing/strongly normalizing/a 
normal form/without a normal form ifft_x is. Moreover, proof nets are confluent. 
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Figure 5: a) A — J-m-step on terms and on nets, b-c) Counter-examples to correctness without ^-boxes 




Figure 6: the ordinary CBV translation from terms to nets. 



Actually, the translation is more than a strong bisimulation: the reduction graph^ of t and f are 
isomorphic, not just strongly bisimilar. An easy but tedious refinement of the proof of Theorem 15.21 
proves: 

Theorem 5.4 (dynamic isomorphism). Let t be a term and X a set of variables containing fv(f). The 
translation induces a bijection (f) between the redexes oft and the redexes oflx ^-t- ^ '■ t t' if and only 
if(j>{R) : fx — >a t^X' where a G {m, e}. 

A nice by-product of the strong bisimulation approach is that preservation of correctness by reduction 
comes for free, since any reduct of a proof-net is the translation of a term. 

Corollary 5.5 (preservation of correctness). Let G be a proof net and G — )• G'. Then G' is correct. 

The original boring translation. For the sake of completeness, Figure |6] sketches the ordinary CBV 
translation from A -terms (possibly with iterated applications) to proof nets (including the case for explicit 
substitutions and using a traditional syntax with boxes on !). An easy computation shows that the term 
t = 5{yz)8, where 8 = Xx.xx maps to a net without normal form, while ? is a A|3y-normal form (see ||2] 
for more details). This mismatch is the motivation behind our work. 



Reduction graphs, which are the graphs obtained considering all reductions starting from a given object, are not nets. 
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6 Motivating ^-boxes 

The two encodings of A -calculus can be seen as fragments of Intuitionistic Multiplicative and Exponen- 
tial Linear Logic (IMELL). Let us stress that in IMELL what we noted ® and ^ correspond to the right 
and left rules for the linear implication — o, and not to the left and right rules for (g) (the four rules for (g) 
and —o are collapsed in LL but not in Intuitionistic LL, in particular our ^ acts on the output of the term, 
i.e. on the right of the sequent, and corresponds to the right rule for —o). 

Our argument is that in IMELL there is no correctness criterion unless the syntax is extended with 
boxes for both ! and —o (our ^), as we shall explain in the next paragraphs. The fragment of IMELL 
encoding the CBN A-calculus is a special case where the box for -o needs not to be represented. The 
fragment encoding the CBV A -calculus is a special case where the box for ! needs not to be represented. 
So, the two encodings are dual with respect to the use of boxes, and then there is nothing exotic in our 
use of ^-boxes. 

The difficulty of designing a correctness criterion for IMELL is given by the presence of weakenings, 
which break connectedness. In most cases weakenings simply prevent the possibility of a correctness 
criterion. The fragment encoding the CBN A -calculus, and more generally Polarized Linear Logic, are 
notable exceptions. For the encoding of the CBN A -calculus there exist two correctness criteria. Let us 
show that none of them works for the CBV A-calculus. 

The first is the Danos-Regnier criterion, in the variant replacing connectedness with the requirement 
that the number of connected components of every switching graph is 1 + #w, where #w is the number 
of weakenings at level (after the collapse of ! -boxes) [24|. In our case this criterion does not work: 
the net in Fig. [5]b verifies the requirement while it does not represent any proof or term. The second 
criterion is Olivier Laurent's polarized criterion, because the CBN encoding is polarized. In its original 
formulation it cannot be applied to the encoding of the CBV A-calculus, because such a fragment is not 
polarized (there can be a weakening as a premise of a tensor, which is forbidden in polarized logic). Our 
re-formulation of Laurent's criterion rejects the net in Figure[5]b (because the two ^-links form a cycle), 
but without using ^-boxes it would accept the net in Figure |5]c, which is not correcj^ 

Thus, the known criteria do not work and there is no criteria for IMELL. The usual way to circumvent 
problems about correctness is to add some information to the graphical representation, under the form 
of boxes (as we did) or jumps (i.e. additional connections). It is well known that in these cases various 
criteria can be used, but this extra information either is not canonical or limits the degree of parallelism. 
Another possible solution is to modify the logical system adding the mix rules. However, such rules are 
debatable, and also give rise to a bad notion of subnet (for details see [1], pp. 199-201). 

Let us stress that our counter-examples to the known criteria do not rely on the exponentials (i.e. 
non-linearity): it is easy to reformulate them in Intuitionistic Multiplicative Linear Logic (IMLL) with 
unitfl for which then there is no correctness criterion. 

In the case studied in this paper the use of ^-boxes does not affect the level of parallelism in a 
sensible way. Indeed, in IMELL the parallelism given by proof nets concerns the left rules (of and — o, 
plus contractions and weakenings) and cuts: in our case there is no (g) (remember our (g and ^ rather 
correspond to the rules for —o), our technical choices for variables keep the parallelism for contraction 
and weakenings, and the parallelism of the left rule for —o (our ®) and cuts is preserved (it is given by 
the equations in ([T]), page[T6l). 

^The net in Figure|5]c would be rejected by the original version of the criterion, which is based on a different orientation. 
But the original orientation cannot be applied to our fragment. 

'^Just replace each sequence of a ! over a dereliction with an axiom, and the weakenings with ±-links. 
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7 Proof nets: the literature on term representations 

When relating A -terms and proof nets a number of technical choices are possible: 

1. Explicit substitutions: proof nets implement a j8-step by two cut-elimination steps. This refined 
evaluation can be seen on the calculus only if the syntax is extended with explicit substitutions. 

2. Variables: to properly represent variables it is necessary to work modulo associativity and com- 
mutativity of contractions, neutrality of weakening with respect to contraction, and permutations 
of weakenings and contractions with box-borders. In the literature there are two approaches: to 
explicitly state all these additional congruences or to use a syntax naturally quotienting with re- 
spect to them. Such a syntax uses n-ary ?-links collapsing weakening, dereliction and contractions 
and delocalizing them out of boxes. It is sometimes called nouvelle syntaxe. 

3. Axioms: various complications arise if proof nets are presented with explicit axiom and cut links. 
They can be avoided by working modulo cuts on axioms, which is usually done by employing an 
interaction nets presentation of proof nets. 

4. Exponential cut-elimination: the cut-elimination rules for the exponentials admit many presenta- 
tions. Essentially, either they are big-step, i.e. an exponential cut is eliminated in one shot (making 
many copies of the !-premise of the cut), or they are small-step, with a rule for each possible 
?-premise (weakening, dereliction, contraction, axiom, box auxiliary port). 

We now list the works in the literature which are closer in spirit to ours, i.e. focusing on the represen- 
tation of A -calculi into proof nets (and for space reasons we omit many other interesting works, as for 
instance [20], which studies the representation of strategies, not of calculi). The first such works were the 
Ph.D. thesis of Vincent Danos (H and Laurent Regnier |[24l . which focused on the call-by-name (CBN) 
translation. Danos and Regnier avoid explicit substitutions, use n-ary contractions, explicit axioms, and 
big-step exponential rules, see also [9|. They characterize the image of the translation using the variant 
on the Danos-Regnier correcteness criterion which requires that any switching graph has #w+ 1 con- 
nected components, where #w is the number of weakenings. In lITOl Danos and Regnier use the CBV 
translatioruj. Both translations are injective. 

In |[T9l ITSl Olivier Laurent extends the CBN translation to represent (the CBN) A/x -calculus. He 
does not use explicit substitutions nor n-ary ?-links, while he employs explicit axiom links and small- 
step exponential rules. His work presents two peculiar points. First, the translation of A/x -terms is not 
injective, because — depending on the term — the -construct may have no counterpart on proof nets. This 
induces some mismatches at the dynamic level. Second, Laurent finds a simpler criterion, exploiting the 
fact that the fragment encoding (the CBN) A /i -calculus is polarized. In [18] Laurent also show how 
to represent the CBV A/i -calculus. However, such a representation does not use the same types of the 
boring translation, as A — )• B maps to ?!(A — o S), and not to !(A — o B). 

Lionel Vaux |28] and Paolo Tranquilli ||26l ITTl study the relationship between the differential A- 
calculus and differential proof nets. Vaux also extends the relationship to the classical case (thus en- 
compassing a differential A/i -calculus), while Tranquilli refines the differential calculus into a resurce 
calculus which better matches proof nets. They do not use explicit substitutions, nor n-ary contractions, 
while they use interaction nets (so no explicit axioms and cut link) and small-step exponential rules. Both 
Tranquilli and Vaux rely on the Danos-Regnier criterion, despite the fragment encoding their calculi is 

'"Let us point out that 1 10] presents an oddity that we believe deserves to be clarified. The authors show that an optimized 
geometry of interaction for the proof nets of the CBV-translation is isomorphic to Krivine' s abstract machine (KAM): this is 
quite puzzling, because the KAM is CBN, while they use the CBV translation. 
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polarized and can be captured using Laurent's criterion by using boxes for coderelictions; in the context 
of A -calculus such boxes do not reduce the parallelism of the representation. 

Delia Kesner and co-authors [6] [71 [161 study the relationship with explicit substitutions (in the CBN 
case). The main idea here is that explicit substitutions correspond to exponential cuts. They use explicit 
axiom links and small-step exponential rules, but they do not employ n-ary contractions (and so they 
need additional rules and congruences). Because of explicit substitutions the translation is not injective: 
now different terms may map to the same proof net, as in this paper. They do not deal with correctness. 

In none of these works the translation is a strong bisimulation. In [31 the author and Stefano Guerrini 
use a syntax inspired by proof nets (and extended with jumps) to represent the CBN A-calculus with 
explicit substitutions. That work is the only one employing (the equivalent of) n-ary ?-links and (the 
equivalent of) small-step exponential rules. In [3 | the correctness criterion is a variation over Lamarche's 
criterion for essential nets, which relies in an essential way on the use of jumps. A reformulation in the 
syntactic style of this paper of both 131 and of Danos and Regnier's proof nets for the CBN A-calculus 
can be found in |T|, together with a detailed account of the strong bisimulation. 

Here, hypergraphs allow us to use n-ary ?-links and collapse axioms and cut links (as if we were 
using interaction nets). More precisely, we represent n-ary ?-links by allowing e-nodes to have more 
than one incoming link. This choice overcomes some technicalities about gluing and de-gluing of ?- 
links. Such technicalities are always omitted, but they are in fact necessary to properly define subnets 
and cut-elimination. We also employ big-step exponential rules and explicit substitutions. 

Acknowledgements. To Stefano Guerrini, for introducing me to proof nets, correctness and the 
representation of A -terms, and to Delia Kesner, for helping with the financial support of this work. 
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